Описание
Panic in mp3-metadata due to the lack of bounds checking
The get_id3() methods used by mp3_metadata::read_from_slice() does not perform adequate bounds checking when recreating the tag due to the use of desynchronization.
Fixed in Fix index error, released as part of 0.4.0.
Пакеты
Наименование
mp3-metadata
rust
Затронутые версииВерсия исправления
< 0.4.0
0.4.0
5.5 Medium
CVSS4
Дефекты
CWE-119
5.5 Medium
CVSS4
Дефекты
CWE-119